Because this is something that was new to me, i asked Mr Abraham what the attack or exploit was. Looking at the log extract, it would seem to the uninitiated that the web visitor was merely browsing their hosted site.

“It is an injection attack where the attacker is trying to attack a Mambo application by injecting commands to fetch hack kits hosted elsewhere, and in the process gain control of the server / site being attacked.

$ok_p_fecha = @proc_close($process);
}else echo “It seems that this PHP version (“.phpversion().”) doesn’t support proc_open() function”;
}else echo “This PHP version ($pro7) doesn’t have the proc_open() or this function is disabled by php.ini”;
}